Governance, Risk and Compliance Analyst

Joining Arup

Arup’s purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world.

As part of a diverse and collaborative global team, you’ll work with colleagues from around the world to uphold and strengthen our cybersecurity posture. This role offers the opportunity to engage with cutting-edge technologies, contribute to meaningful digital transformation projects, and help shape secure, compliant solutions across regions.

You’ll gain hands-on experience in areas such as cloud security, risk assessments, secure software development, and supply chain cyber due diligence. With a strong focus on continuous learning, you’ll have access to global knowledge-sharing sessions, training resources, and the opportunity to grow alongside experienced professionals in a supportive and innovative environment.

Join us to build a safer digital future, regionally and globally

Cyber GRC (Governance, Risk, and Compliance) team is responsible for ensuring that an organization's cybersecurity practices align with internal policies, industry standards, and regulatory requirements. The team manages cyber risks by developing governance frameworks, assessing threats, implementing controls, monitoring compliance, and supporting audits. Their goal is to reduce security risks while enabling business objectives in a secure and compliant manner.

Watch this short clip to discover how Arup are shaping a better world and how you could be a part of it!

The Opportunity

At Arup, you belong to an extraordinary collective – in which we encourage individuality to thrive. Our strength comes from how we respect, share and connect our diverse experiences, perspectives and ideas. You will have the opportunity do socially useful work that has meaning – to Arup, to your career, to our members and to the clients and communities we serve.

• Represent Cyber GRC in Australasia, responding to cyber incidents, risk issues, and related requests.
• Ensure compliance with Arup’s Information Security Control Framework through audits and ongoing oversight.
• Manage global cybersecurity awareness campaigns and training initiatives to strengthen security culture.
• Collaborate with regional digital teams to embed security-by-design principles into projects and products.
• Conduct cybersecurity due diligence on third-party vendors and drive IT disaster recovery and compliance efforts.

Did you know: Our Digital Technology team are proud previous winners of the IT Team of the Year for at the Chartered Institute of IT’s UK IT Industry Awards.

Is this role right for you?

If you're a cybersecurity professional with a strong foundation in risk management, compliance, and internal auditing, and you're ready to take on a regionally strategic role with global impact, this role could be an excellent fit for you.

You'll thrive in this position if you enjoy being both hands-on and strategic acting as the primary cybersecurity contact for the Australasia while collaborating with a global team to influence and improve security posture across cloud environments, digital platforms, and development processes.

This role is ideal for someone who:

• Excels at performing threat and risk assessments and driving risk remediation.
• Understands how to assess and improve compliance through internal audits and security control assessments.
• Is confident working with stakeholders, developers, and vendors to embed security best practices.
• Is passionate about cyber awareness and education and wants to lead global initiatives that drive cultural change.

• Values continuous learning and is eager to grow in a supportive, international, and forward-thinking organization.

What we offer you

At Arup, we care about each member’s success, so we can grow together.

Guided by our values, we provide an attractive total reward package that recognises the contribution of each of our members to our shared success. As well as competitive, fair and equitable pay, we offer a career in which all of our members can belong, grow and thrive – through benefits that support health and wellbeing, a wide range of learning opportunities and many possibilities to have an impact through the work they do.

• We are owned in trust on behalf of our members, giving us the freedom, with personal responsibility, to set our own direction and choose work that aligns with our purpose and adds to Arup’s legacy. Our members collaborate on ambitious projects to deliver remarkable outcomes for our clients and communities. Profit Share is a key part of our reward, enabling members to share in the results of our collective efforts.
• We care about you and want you to perform at your best, which is why we offer one of the most competitive benefits packages in our sector.
• As a member organisation, everyone shares in our success through a global profit share scheme (payments are dependent on the firm’s financial performance).

• We also provide private medical insurance, Life assurance, Accident insurance and Income protection cover. In addition, you’ll have access to flexible benefits to help you look after all aspects of your wellbeing and give you the freedom and flexibility to find the best solutions for you, your family, and your individual needs.

Different people, shared values

Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. We welcome applications from individuals of all backgrounds, regardless of age (within legal limits), gender identity or expression, marital status, disability, neurotype or mental health, race or ethnicity, faith or belief, sexual orientation, socioeconomic background, and whether you’re pregnant or on family leave. We are an open environment that embraces diverse experiences, perspectives, and ideas – this drives our excellence.

Guided by our values and alignment with the UN Sustainable Development Goals, we create and contribute to equitable spaces and systems, while cultivating a sense of belonging for all. Our internal employee networks support our inclusive culture: from race, ethnicity and cross-cultural working to gender equity and LGBTQ+ and disability inclusion – we aim to create a space for you to express yourself and make a positive difference. Discover more about Life at Arup.

We are committed to making our recruitment process and workplaces accessible to all candidates. Please email [email protected] to let us know if you need any assistance or reasonable adjustments throughout your application or interview process, and/or to perform the essential functions of the role. We will do everything we can to support you.

Our Application Process

To understand what to expect next, please visit our Careers page. Our aim is to make this process as streamlined and easy as possible for our applicants.

Stay safe online - Arup will never ask for payment or your bank details as part of our recruitment process.